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IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 

TITLE: INTERNET-BASED SECURE DOCUMENT SIGNING NETWORK 

SPECIFICATION 
BACKGROUND 
CROSS REFEKENCE TO RELATED APPLICATIONS 

This application is based on U.S. Provisional Application Serial Numbers 60/235,228 and 

60/235,128, both filed September 28, 2000. Such Provisional Applications are hereby incorporated 
herein by reference in their entirety. 

1. Technical Field 

The present invention relates generally to the signing of documents, and more specifically 
to the signing of documents over the Internet employing electronic image signatures and digital 
signatures. 

2. Related Art 

Documents in general, and financial, medical and legal documents in particular, are signed 
by one or more individuals. The signatures are sometimes necessary for legal purposes, and the 
dates when these signatures v^ere acquired are also typically important. For example, a physician's 
signature is essential for processing patient care related information in hospitals and in home health 
care agencies, and are often required before disbursement of funds. 

With the rapid acceptance of the Internet by businesses, much of the work that businesses 
conduct is likely to move to the Internet. The Internet makes it easy to transfer information, 
interact remotely and to exchange files. However, the need to sign and approve documents as part 
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of normal business transactions has not gone away. Signing documents constitutes a part of the 
workflow in most business transactions, but the facility to support signing of documents over the 
Internet is virtually non-existent. 
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Brief Description of the Diagrams 

The numerous objects and advantages of the present invention may be better understood by 
those skilled in the art by reference to the accompanying figures in which: 

Figure lA is a perspective diagram of an Internet-based secure document signing network 
that provides mechanisms for the specification of placement information for signatures and dates 
on documents and the retrieval of such documents for viewing and signing purposes by authorized 
individuals; 

;l Figure IB is a perspective diagram of an authentication infi-astructure, comprising an 

3 

authentication network, that provides mechanisms for the submission of one or more documents by 
Jl a submitter that need to be signed; for the signing of documents by a signer; and, for the 

i s 

% authentication of a signer by an authenticator; 

;! Figure 2A is a block diagram of an exemplary document that, while being made secure 
=1 employing a user's public and private key combination, also has embedded electronic image 
'^ signatures and associated dates along with information regarding the placement of such electronic 
image signatures and dates; 

Figure 2B is an exemplary document that comprises, in addition to the sections described 
for the document in Figure 2A, a specification of the order of signing section that provides 
information on the order in which one or more signers are expected to sign the document; 

Figure 3 is a schematic flow diagram depicting the process of specifying signature and date 
placement information for a document, subsequently retrieving the document for signing purposes 
using a document ID and password and capturing a signer's signature using a signing pad to 
associate the signature with the document; 
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Figure 4A is a schematic block diagram describing the process of specifying signature and 
date placement information, employing such signature and date placement information to place 
signatures and dates when the document is subsequently signed and displaying the document along 
with the signed signatures and associated dates for viewing or printing purposes. At a block 407, 
the processing starts; 

Figure 4B is a schematic block diagram describing the process of specifying signature and 
date placement information and with the order in which specific signers may sign the document; 

;f Figure 5 is a schematic block diagram showing the processing associated with the signing 

i 

y of documents using electronic image signatures and digital signatures; 

ft Figure 6 is a schematic block diagram showing the feature of dispensing digital certificates 
''to users via the signing network, where the signing network is employed as a digital certificate 

:^ dispensing network; and 

■I 

y Figure 7 describes an exemplary work flow of the signing network as a digital certificate 

^ dispensing network. 
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SUMMARY OF THE INVENTION 

An authentication infrastmcture comprises a document, a submittpr client computer 

running a submitter function that facilitates submission of the document by a submitter, an 
authenticator client computer running an authenticator function that facilitates the selective 
authentication of a signer by an authenticator after the presentation of authentication related 
information by the signer. The authentication infrastructure facilitates submission of the document 
by the submitter via the submitter fimction, the subsequent signer authentication by the 

J authenticator employing the authenticator fimction and the signing of the document by the signer 

1 

after signer authentication. 

In one embodiment, the authentication infrastructure of claim ftirther comprises a signer 
I computer running a signer function that facilitates viewing of the document by the signer. The 
1 authentication infrastructure facilitates document submission by the submitter employing the 
;i submitter function, document viewing by the signer employing the signer function and signer 

ii 

authentication by the authenticator employing the authenticator fiinction. 

Additionally, authenticator function of the authentication infrastructure selectively requires 
the authenticator to provide authentication information before &cilitating the selective 
authentication of the signer. Similarly, the authentication infrastructure requires the signer to 
authenticate himself to the authenticator by presenting authentication related information to the 
authenticator before allowing the signer to sign documents in the presence of the authenticator. 

In another embodiment, the authentication infrastructure further comprises a document id 
for the document and a password associated with the document id. In this setup, the authentication 
infrastructure provides the signer access to the document when the signer preseijts the document id 
and its associated password. 
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In another embodiment, the authenticator fiinction of the authentication infrastructure also 
comprises a signing pad that facilitates capturing a signature from the signer. In this setup, the 
authentication infrastructure provides the authenticator access, via the authenticator fiinction, to the 
document after the authenticator submits the document id and its associated passv^ord 
communicated by the signer. In addition, the authenticator fiinction facilitates the signing of the 
document by the signer by capturing the signature of the signer via the signing pad and associating 
it with the document to be signed, 
1 In a related embodiment, the authentication infrastructure of claim 5 ftirther comprises an 

il order of signing by a plurality of signers specified by the submitter. The submitter function 
Z facilitates the specification of the order of signing by the plurality of signers. The authentication 
infrastructure is capable of selectively enforcing the order of signing by the plurality of signers. 
^1 The authentication infrastructure enforces the order of signing by the plurality of signers when the 
;! submitter submits a document for signing via the submitter fiinction. 

t In yet another embodiment, the authentication infrastructure also comprises a fax machine 
communicatively coupled to the authenticator fiinction. The authenticator fiinction facilitates the 
signing of the document by the signer by capturing the signature of the signer yia the signing pad 
and associating it with the document to be signed. In addition, the authenticator fiinction employs 
the fax machine to selectively transfer the signed document after it has been^^igned. 

In an embodiment that provides an extra level of security, the authentication infrastructure 
comprises a digital certificate installed at the authenticator client computer. Th^ digital certificate 
is presented by the authenticator fiinction running on the authenticator client computer for client 
authentication and the digital certificate is employed by the authenticator fiinc|:ion for selectively 



7 



Express Mail No. ET1625704Q2US 



Atty. Docket No. N102US1 



encrypting and decrypting information that are associated with the document during the signing 
process. 

In one embodiment of the authentication infrastructure a signing ^arty certification 
environment, communicatively coupled to the server, is used to enhance the authenticator function. 
A server, communicatively coupled to the submitter client computer, running the submitter 
function and the authenticator cUent computer running the authenticator fiinction are also 
employed. The signing party certification environment comprises the authenticator client 
computer, a telephone used selectively by the signer or the authenticator to talk to the submitter to 

;i 

;! determine the document id and password associated with the document. It al^o comprises a fax 

f| machine selectively used by the authenticator to fax a document signed by the signer to the server 

= 1 

S or to the submitter. 

:| In one embodiment, public key encryption is employed for security. A public and private 

-I 

key pair is assigned to the submitter. The document comprises sections for embedding electronic 

u 

'J image signatures and associated dates along with sections for information regarding the placement 
of such electronic image signatures and dates. The submitter function makes the document secure 
employing the submitter's public and private key combination when the document is submitted for 
signing by the submitter. The authenticator fiinction accesses the document employing the public 
key of the submitter to enable the signer to sign the document. In addition, the authenticator 
function populates the sections for embedding electronic image signatures and associated dates 
with the signer's signature and associated signing date when the signer signs tl^e document in the 
presence of the authenticator. 

In a different embodiment, the authentication infrastructure comprises an authentication 
network, a submitter client computer, communicatively coupled to the authentication network, that 
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facilitates document submission by a submitter and an authenticator client computer, 
communicatively coupled to the authentication network, that facilitates the selective authentication 
of a signer by an authenticator after the presentation of authentication related information by the 
signer. The authentication network facilitates document submission by the submitter via the 
submitter cUent computer, the signer authentication by the authenticatpr employing the 
authenticator client computer and the subsequent document signing by the signer after signer 
authentication employing the authenticator client cc^^uter. 
-I The authentication inft-astructure may fiirther comprise submitted documents that may be 

3 signed or unsigned, a signer client computer, that facilitates viewing of submitted documents, a 

;| 

;j document repository, managed by the authentication network, for storing the submitted documents 

II. 

:^and subsequently selectively retrieving them for signing. In addition, a status information of 
:i submitted documents that may change is also available. The authentication network manages the 

;■*! 

;l storage and retrieval of signed and unsigned submitted doQuments. 

'f Additionally, the signer cUent computer facilitates the selective viewing of the submitted 
document, the submitter client computer facilitates the selective viewing the submitted documents 
and the authentication network facilitates the selective storage and retrieval of the submitted 
documents. 

In a related embodiment, the authentication network facilitates a new document submission 
by the submitter over the Internet employing the submitter client computer and the subsequent 
signing of the submitted new document by the signer employing the authentication client computer 
over the Internet after the signer has been authenticated by the authenticator employing the 
authentication client computer over the Internet. Again, the new document may be created and 
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submitted employing the submitter client computer for signing by the signer oyer the Internet via 
the signer client computer. 

In an embodiment that supports specification of locations for signatures and dates that are 
included in a document, the submitter client computer of the authentication infi-astrudure 
comprises an Internet browser-based drag-and-drop rectangular box drawing utility for drawing a 
rectangular box on the new document. The rectangular box specifies the coordinates of a one of a 
plurality of information items. The Internet browser-based drag-and-drop rectangular box drawing 
futility facilitates selective relocation of the rectangular box on the new document that specifies the 

:l 

coordinates of the one of a plurality of mformation items. In addition, thp submitter client 
^1 computer facilitates the storage of the new document along with the specified coordmates of the 
;^ one of a plurality of information items in the authentication network on subi^ission of the new 
;| document by the submitter. 

;^ 

.1 In addition, the authenticator client facilitates the population of the one of a plurality of 

information items associated with the document at the specified coordinates when the signer signs 
the document with the help of the authenticator via the authenticator cUent computer. The 
authentication network also fecilitates the viewing of the signed new document by the submitter via 
the submitter client computer. 

In a different Internet-based embodiment of the present invention, sn Internet-based 
authentication infi-astructure comprises a paper document, a plurality of information items and a 
submitter client computer with a scanner for scanning the paper document. TJie submitter client 
computer facilitates the creation of a new document by the scanning of the paper document on the 
scanner. The submitter client computer also facilitates the selective specification of placement 
information for the plurality of information items within the new document. 
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In addition, the Internet-based authentication infrastmcture may fi|rther comprise a 
document repository. The submitter client computer saves the new document along with the 
specification of placement information for the plurality of information items in ^e new document, 
at the document repository, as a submitted document. 

In a related embodiment, the Internet-based authentication infrastructure further comprises 
an authenticator client computer, communicatively coupled to the document repository, that 
facilitates the authentication of a signer by an authenticator having access to the authentication 
;| infrastructure. The authenticator client computer facilitates the retrieval of the submitted document 

;i 

j^^from the document repository. The authenticator client computer facilitates the selective 

1 population of the plurality of information items in the submitted document by the signer and by the 

2 authenticator after authentication of the signer by the authenticator In additioi^, the authenticator 
!| client computer facilitates the selective storage of the populated submitted document in the 
I d<^cument repository. 

'I Other aspects, advantages and novel features of the present invention wi|l become apparent 

from the following detailed description of the invention when considered in conjunction with the 
acconjipanying drawings. 
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Detailed Description of the Diagrams 

Figure lA is a perspective diagram of an Internet-based secure document signing network 
105 that provides mechanisms for the specification of placement information for signatures and 
dates on documents and the retrieval of such documents for viewing and signing purposes by 
authorized individuals. The Internet-based secure document signing networlsf 105 comprises a 
creator's browser 109 used by a document creator to specify placement information, such as 
coordinates and page numbers, for the placement of signatures, dates, etc. on dc^cuments, a signing 

I party certification environment 121 used by one or more signers to view and sign documents in the 

I 

ij presence of a certification party, such as a notary, and optionally, a viewer's browser 107 used by a 
:^ viewer to view the signed document. In addition, a signature repository and verification system 
nil is used to capture, save or retrieve electronic image signatures, digital sigi^atures, and digital 
;j certificate information, and a server 115 is used to save and retrieve documents fi-om a document 

;| database 117. 

il 

;i The signature repository and verification system 1 1 1 comprises a signature database that is 

used to store and retrieve electronic image signatures, digital certificates, digital signatures, etc. 
Using the signing party certification environment 121, the certification party apcesses documents 
that are to be signed, from the server 115, over Intemet, Dial-up, & / or Other Public / Private 
Network 119. The server 115 provides access to the saved documents only after subjecting the 
certification party to client authentication based on a digital certificate presented by the computer 
125 available at the signing party certification environment 121, and based on a login name and 
password previously established by the certification party with the server 115. The digital 
certificate presented by the computer 125 to the server 115 is used for dual purposes - for chent 
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authentication purposes as well as for selectively encrypting and / or decrypting information that 
are associated with the document during the signing process. 

The signing party certification environment typically consists of a computer 125 used by 
the certification party to access documents from the server 115 over the Internet 119, a telephone 
123 used selectively by the signing party or the certification party to talk to the creator of the 
document to determine the document ID and password associated with the document to be signed, 
and a fax machine 127 selectively used by the certification party to fax a docupent signed by the 
|:| singing party to the server 1 15 or to the creator of the document. The certification party employs 

Ijiliie compute 125 to access the server 115 over the Internet 119, such access requiring the 

fll 

!!■ certification party to login using a login name and a password. Specific documents are then 

n| 

^ J retrieved, using an Internet browser or a client software, by the certification party from the server 
|:| 115 by providing document Ids and associated password, such documents when displayed on the 
Internet browser or client software being capable of being signed by a signing^ party. 

In one embodiment of the present invention, the computer 125 has a signing pad attached 
to it to facilitate signing of documents via a signing pen. The signing pad is tjyically used by the 
certification party to gather signatures from the signing parties as part of the process of signing 
documents. Such signatures gathered from a signing pad attached to the pomputer 125 are 
automatically associated with the current document being viewed via the Internet browser or client 
software by the signing party and the certification party on the computer 125. ^though a signing 
pad is envisioned as a mechanism for gathering signatures, other input devices may be used for the 
same purpose. 

The signature or date placement information is specified by a user ifsing the creator's 
browser 109 by means of a document viewing software that facilitates the specification of 

15 
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coordinates for signatures and dates on top of an existing document. Such signature or date 
placement information is subsequently associated with the document itself and stored in a 
document database 1 17 accessible via the server 1 15. In one embodiment, the ^rver 115 is a web 
server that makes the document database 1 17 accessible via the Internet, dial-up &/ or other public 
/ private network 119 to users using the viewer's browser 107, the creator's l^rowser 109 or the 
signing party certification environment 121. The document viewing software is executed on the 
creator's browser 109 in order to specify one or more signature and date placement information. In 
:i one embodiment, all such signature and date placement information is typically stored along with 
[I the document itself in the document database 1 17. In another embodiment, all such signature and 
1 date placement information is associated with the document but stored external to the document 
^ itself at the docupient database 1 17. 

:| The document database 117 is used to store and retrieve documents, dqcument templates, 

jl etc. Specifically, it is used to store documents with their contents, associated signature and date 
■J placement information, the signatures and dates themselves, and document security related 
information such as message digests, etc. More specifically, the signature or date placement 
information mcludes coordinates, corresponding page information, such as page numbers, etc. 

In one embodiment, the creator's browser 109, the signing party certification environment 
121 and the viewer's browser 107 is the same machine. In another related embc^diment, the server 
115 and the signature repository and verification system 111 are also incorporated into this same 
machine. In another embodiment, the server 115 and the signature repository and verification 
system are combined into one unit accessible over the Internet 119. 

Typically, when a user needs to sign a document, the user obtains the (focument ID and a 
password from the creator of the document and then gives it to the certification party to retrieve a 

14- 
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document so as to be able to sign the document in the presence of the certification party. The 
certification party has digital certificates and an account with the server 115 that provides access to 
documents created by the creator. 

Figure IB is a perspective diagram of an authentication infi-astmcture 155, comprising an 
authentication network 165 that provides mechanisms for the submission of one or more 
documents, by a submitter using a submitter cUent computer, that need to be signed; for the signing 
of documents by a signer; and, for the authentication of a signer by an authenticator. 
:i A creator or submitter employing the submitter client computer 157 creates and submits a 

|l document requiring signatures of a signer using signer client computer 159, the authenticator using 

if 

:J the authenticator cHent computer 161 capable of conducting the authentication o^ signer 159 via the 
5 authentication network 165. 

;i If the document creator or submitter using the signer cUent computer 157 is also required to 

at; 

;i sign a document, the document creator or submitter can also participate in the signing process 
supported by the authentication network 165. Thus, the authentication of a submitter of a 
document is possible along with authentication of a signer whose signatures are required on the 
document. 

In general, all signers of a docimient, employing the signer client CjC»mputer 159, will 
receive selective notification from the authentication network 165 about the need to sign 
documents. Again, in general, for each document that needs to be signed, th^ associated signer, 
employing the signer client computer 159, receives an indication or notification via the 
authentication network. The specification of who is to sign a document qr who receives a 
notification is specified by the submitter or by a workflow control specification that is part of the 
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authentication network 165. Notification is also provided if a document invqlves a plurality of 
signers. 

Figure 2A is a block diagram of an exemplary document 205 that, while being made secure 
employing a user's public and private key combination, also has embedded electronic image 
signatures and associated dates along with information regarding the placement of such electronic 
image signatures and dates. Specifically, the document 205 comprises an original document 
content sections 211, an image signature and date coordinates section 209, an associated image 
:| signatures and dates sections 213, and a message digest section 215. 

;.| 

The original document content sections 21 1 comprises one or more sectipns of a document 
:^ originally created using an editor such as Microsoft Word, or a scanned image of a paper 
J document. In one embodiment, it is a string of bytes in a tiff image format, representing the 
;| scann^ image of a paper document. 

;^ 

:| When a document is initially created by an user, only the original document content 

il 

sections 21 1 is available. Later, using a Document Viewer tool, the user specifies locations for one 
or more signatures and dates, which are then saved in the image signature axi^ date coordinates 
section 209. When another user, such as a user who signs the document using the signer's browser 
121, signs the document, the electronic image signature of the user is retrieved from the signature 
repository and verification system 111 and inserted into the associated image signatures and dates 
sections 213, along with corresponding dates. In addition, a message digest 215 is computed by the 
signer's browser or the server 1 15 and inserted into the message digest section 215 of the document 
207. 

In one embodiment, the message digest is computed using the by the sixer's browser 121 
using the original document content sections 21 1, the image signature and date coordinates section 
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209 and the associated image signatures and dates sections 213 and inserted intq the document. In 
another embodiment, only a subset of the available sections of a document are employed to 
generate the message digest. 

Figure 2B is an exemplary document 225 that comprises, in addition to the sections 
described for the document 205 in Figure 2A, a specification of order of signing s^ion 217 that 
provides information on the order in which one or more signers are expected to sign the document. 
The creator of the document is expected to optionally specify the order in v^hich the signers should 

2 sign the document, using a document viewer that is executed using the creator's browser 109, Such 

;t information is subsequently employed by the server 1 15 to enforce the order when the document is 

u 

n accessed over the Internet 1 19 by the certification party via the compute^: 125. 

3 Figure 3 is a schematic flow diagram depicting the process of specifying signature and date 

4 placement information for a document, subsequently retrieving the document fi^r signing purposes 
^ using a document ID and password and capturing a signer's signature using a signing pad to 
■[ associate the signature with the document. At a block 307, the processing start^ and a subsequent 

block 309, a document creator either specifies a given document as a source or optionally specifies 
a document template and creates a document. 

At a next block 311, the user drags the mouse drawing a box on specific sections of the 
document thus specifying the location of a signature or a date. The creator's browser 109 or a 
document viewer software application then keeps track of the coordinates of the box drawn by the 
user that indicates the location for the placement of a signature or a date. The coordinates for 
signatures and dates are captured and sav^. At a next block 313, the creator of the document 
optionally specifies a document ID and a password for its retrieval by others. 
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Later, at a next block 315, when a signer decides to sign the document in the presence of a 
certification party at a signing party certification environment 121, the document is retrieved by the 
certification party using the document ID and its associated password at a ne?rt block 317, thus 
enabling the signer to sign the document by signing on a signing pad connected to the computer 
125 inn the presence of the notary. Subsequently, at a next block 321, the signature entered by the 
signer and the current date is selectively inserted into the document or selectively associated with 
the document. In addition, any logo or identification used to identify the certifipation party is also 

;| selectively included in or associated with the document, before the processing finally ends at a 

II block 323. 

1^ at the decision block 315, the signer decides to just retrieve a docun|ent and view it or 
« print it, then at a next block 319, the document is retrieved by the signer using the document ID and 
;i the password, providing the signer an opportunity to view or print the docjument, before the 

:| processing finally ends at a block 323. 

il 

•J Figure 4A is a schematic block diagram describing the process of specifying signature and 
date placement information, employing such signature and date placement information to place 
signatures and dates when the document is subsequently signed and displaying tjie document along 
with the signed signatures and associated dates for viewing or printing purposes. At a block 407, 
the processing starts. At a next block 409, the user opens a document using a doj^ument viewer, the 
document viewer being accessible over the Internet via the creator's browser or accessible as an 
independent application. Then, the user, using a mouse, drags a rectanguV box on specific 
locations of the screen where a signature needs to be placed, and the document viewer software 
records the corresponding placement location, usually in X and Y coordinates. Similarly, the user 



n 



Express Mail No. ET1625704Q2US 



Atty. Docket No. N102US1 



may choose to specify placement information for a date. One or more Signatures and /or dates 
may be specified on each page. 

In one embodiment, the user also specifies the order in which the signati^re and dates are to 
be entered into the documents, thus specifying a workflow for the document. In another 
embodiment, the user also specifies the identification of actual users who may sign at designated 
places in the document, in the specified order. In yet another embodiment, the user also specifies 
the roles of users who are allowed to sign in designated locations in the document. 

Then the user can selectively replace the locations of the signatures by redrawing them or 
by adjusting the coordinates. Subsequently, the document viewer retrieves cooj-dinates associated 
with each signature and date box specified by the user and saves them, along with the document. 
The document thus becomes a template that may be^r^used. 

At a next block 411, the user optionally specifies a document ID and password for security, 
so that only those individuals to whom the document ID and the password is known may be able to 
view or sign the document. In one embodiment, the user specifies more than one pair of user 
specifies only one pair of document ID and password set for all the viewers and signers and 
certification parties who might access the document. In another embodiment, the document ID and 
password set for the document, one document ID and password set for each pf the viewers and 
signers and certification parties who might access the document. 

Later, at a decision block 413, if a certification party chooses to access( the document for 
signing purposes, the document is retrieved at a next block 417 and the user is allowed to sign the 
document and signatures and dates are placed at all the appropriate specified places in the 
document, along with the logo, insignia, electronic stamp, and / or identification information of the 
certification party, before processing stops ^t a next block 421. 

If 
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If, at the decision block 413, if a certification party or viewer or signer chooses to access the 
document for viewing purposes, the document is retrieved at a next block 415 and the viewer or 
signer or certification party is allowed to view or print the document with all associated signatures, 
insignias, dates, etc., before terminating the processing at the next block 421. 

Figure 4B is a schematic block diagram describing the process of specifying signature and 
date placement information and with the order in which specific signers may sign the document. 
At a block 457, the processing starts. At a next block 459, the creator of a document opens a 
document using a document viewer, the document viewer being accessible over the Internet via the 
creator's browser or accessible as an independent application. Then, the creator, using a mouse, 
drags a rectangular box on specific locations of the screen where a signature needs to be placed, 
and the document viewer software records the corresponding placement locatiop, usually in X and 
Y coordinates. Similarly, the creator may choose to specify placement information for a date. 
One or more Signatures and /or dates may be specified on each page. The creator optionally views 
the list of date placements and signature placements, selectively associates the order in which the 
list entries are expected to sign the document, and thus manages the list of signers. 

The user then specifies the order in which the signature ^d dates are to be entered into the 
documents, thus specifying a workflow for the document. The creator also specifies the 
identification of actual users who may sign at designated places in the document, in the specified 
order. Then the creator can selectively replace the locations of the signatures by redrawing them or 
by adjusting the coordinates. Subsequently, the creator, using the document viewer, retrieves 
coordinates associated with each signature and date box specified by the user anji saves them along 
with the document. 
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At a next block 461, the user optionally specifies a document ID and password for security, 
so that only those individuals to whom the document ID and the password is known may be able to 
view or sign the document. The creator specifies one document ID and passwprd set for each of 
the viewers and signers and certification parties who might access the document. 

Later, at a decision block 463, if a certification party determines that the (document needs to 
be signed in a specific order and chooses to access the document based on the creator specified 
order for signing purposes, the document is retrieved at a next block 467 and th^ signer whose turn 
it is to sign is allowed to sign the document. Immediately and automatically, signatures and dates 
fi are placed at all the appropriate specified places in the document, along with the logo, insignia, 
^tl electronic stamp, and / or identification information of the certification party, before processing 

% ; it 

III Stops at a next block 471 . 

If, at the decision block 413, if a certification party determines that the document need not 
S^i be signed in a specific order, the document is retrieved at a next block 465 and the signer is allowed 
pto sign the document. Immediately and automatically, signatures and dates ai^ placed at all the 
appropriate specified places in the document, along with the logo, insignia, el^ronic stamp, and / 
or identification information of the certification party, before processing stops at a next block 471. 

Figure 5 is a schematic block diagram showing the processing associated with the signing 
of documents using electronic image signatures and digital signatures. At a blopk 507, the process 
starts, and at a next block 509, the signer's electronic image signatures and the current date is 
inserted into the document at all the specified coordinates when the signer si^ns the document. 
Then, at a next block 511, a message digest is created and associated with the document. In one 
embodiment, the message digest is created based on the digital certificate of the certification party 
and the contents of all the sections except the message digest section of the document. In another 
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embodiment, the message digest is created based on the digital certificate of the certification party 
and the contents of only a subset of the sections of the document. In yet another embodiment, the 
message digest is computed based on a digital certificate of the signer and the qontents of all or a 
subset of the sections of the document. 

Subsequently, at a next decision block 513, if it is determined that the document must be 
saved along with the message digest, then at a next block 517, the document is saved along with the 
message digest and with the associated image signatures and dates, if any, before terminating the 

I processing at a end block 521. Otherwise, if, at the block 513, it is determined that the document 

=1 

jl need not be saved along with the message digest, then at a next block 515, the document is saved 
^ along with the associated image signatures and dates, if any, while the message digest is saved 
I separately, although the document maintains an association via a reference with ^he message digest. 
:| Finally the processing terminates at a end block 521. 

:i Figure 6 is a schematic block diagram showing the feature of dispensing digital certificates 

4 to users via the signing network, where the Internet-based secure document signing network is 
employed as an Internet-based secure digital certificate dispensing network. The Internet-based 
secure digital certificate dispensing network 605 comprises a digital certificate dispensing service 
615 that creates and supplies digital certificates over the internet, that is commi^nicatively coupled 
to an electronic and digital signature repository and verification server 611; a digital certificate 
dispensing unit 621; a user computer 625; and an Internet, dial-up, & / or other public/ private 
network 619. 

In the Internet-based secure digital certificate dispensing network 605, a certification party 
such as a notary employs the digital certificate dispensing unit 621 to collect the signature of users, 
determine their identify, verify their identify by means of user supplied documentation, and finally, 
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to dispense digital certificates issued by the digital certificate dispensing service 615 via the 
Internet 619. 

The user, to view or sign documents from a secure server 609 using ^ digital certificate 
acquires a digital certificate from the digital certificate dispensing unit 62 L To acquire the 
certificate, the user has to approach the certification party operating the digital certificate 
dispensing unit 621, and in the presence of the certification party, such as a notary, provide 
information that will identify him. A digital certificate is subsequently selectively given to the user 
I !| by the digital certificate dispensing unit 621 via a diskette or via email. 

V4 Once the user acquires and installs a digital certificate from the digital certificate dispensing 

I u . 

!JJ unit 621, a user can access documents and information from the secure server 609 which enforces 
I client authentication requiring a digital signature issued by or dispensed by digital certificate 
f :l dispensing unit 621. 

1:1 The electronic and digital signature repository and verification systen| 611 comprises a 

signature database that is used to store and retrieve electronic image signatures, digital certificates, 

1=1 

digital signatures, etc. Certificates dispensed by the digital certificate dispensing unit 621 are 
communicated to the electronic and digital signature repository and verification system 61 L 

In one embodiment of the present invention, the digital certificate dispensing unit 621 has a 
signing pad attached to it to facilitate capturing of electronic image signatures via a signing pen. 
The signing pad is typically used by the certification party to gather signatures from the signing 
parties as part of the process of dispensing certificates. Such signatures gathered from a signing 
pad attached digital certificate dispensing unit 621 are automatically associatefl with the current 
user. Although a signing pad is envisioned as a mechanism for gathering signatures, other input 
devices may be used for the same purpose. 
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Figure 7 describes an exemplary workflow of the signing network as f digital certificate 
dispensing network. At a block 707, the processing begins and at a next block 709, a notary 
dispenses digital certificate using the digital certificate dispensing unit 621 to a user after certifying 
the identify of the user using documentation supplied by the user. Later, at a next block 711, the 
certified user installs the digital certificate on the user's computer. Subsequently, at a next block 
713, when the certified user decides to access a secure server 609, the secure ^rver tries to enforce 
cUent authentication and requests a client authentication certificate fi^om t|ie certified user's 
^ computer 625. The secure server verifies the digital certificate presented by the user computer 
I before providing access to the web pages it manages. Finally, processing stops at an end block 

I 

?721. 

\ 

I If, at the decision block 713, the certified user chooses to access non-secure servers, then 

^ the web pages served by the non-secure servers are processed and display as done normally, and 

*i 

• processing terminates at the next bock 721. 

i 

j Although a system and method according to the present invention has been described in 

I 

connection with the preferred embodiment, it is not intended to be limited to the specific form set 
forth herein, but on the contraiy, it is intended to cover such alternatives, modifications, and 
equivalents, as can be reasonably included within the spirit and scope of the invention as defined 
by this disclosure and appended diagrams. 



